| Author |
FrontPage User Logins
|
|
| Marty Shifflett 2007-08-13, 1:23 pm |
| Okay I am not sure why I can't figure this out, but it has been a long time
since I had to set up any users for FrontPage authoring of web sites. I have
a web site running in IIS 6.0 on a Windows 2003 Server. I have configured
the Server Extensions 2002 for the site and can log in remotely via FrontPage
as administrator, or anyone in the administrators group. When I create a new
user in the Active Directory and set the permissions on the site for them in
IIS, I cannot log in via FrontPage. Am I missing something here?
Thanks,
Marty Shifflett
| |
| Roger Abell [MVP] 2007-08-14, 1:19 am |
| The domain accounts need permissions on the content (which the
FPSE '02 probably generously over allotted) and log on rights to
the machine (what groups have local login, and what domain
groups are in them?).
"Marty Shifflett" <MartyShifflett@discussions.microsoft.com> wrote in
message news:B49BBA92-B2DD-4806-8AB4-79930D1C649B@microsoft.com...
> Okay I am not sure why I can't figure this out, but it has been a long
> time
> since I had to set up any users for FrontPage authoring of web sites. I
> have
> a web site running in IIS 6.0 on a Windows 2003 Server. I have configured
> the Server Extensions 2002 for the site and can log in remotely via
> FrontPage
> as administrator, or anyone in the administrators group. When I create a
> new
> user in the Active Directory and set the permissions on the site for them
> in
> IIS, I cannot log in via FrontPage. Am I missing something here?
>
> Thanks,
> Marty Shifflett
| |
| Marty Shifflett 2007-08-14, 7:19 am |
| Ahhh, that's right. They have to have log on locally rights to the machine
before they can log in to the web site via FrontPage. I will set up a new
group just for that pupose and give it that right. That should take care of
it, correct?
"Roger Abell [MVP]" wrote:
> The domain accounts need permissions on the content (which the
> FPSE '02 probably generously over allotted) and log on rights to
> the machine (what groups have local login, and what domain
> groups are in them?).
>
> "Marty Shifflett" <MartyShifflett@discussions.microsoft.com> wrote in
> message news:B49BBA92-B2DD-4806-8AB4-79930D1C649B@microsoft.com...
>
>
>
| |
| Marty Shifflett 2007-08-14, 1:20 pm |
| I created a new global security group called "Web Authors" and put the user
in question in that group. I went in and edited the Default Domain
Controllers Policy and added that new group to the "Allow log on locally"
policy in the User Rights Assignment section. I still cannot log on via
FrontPage as that user. Any ideas?
"Roger Abell [MVP]" wrote:
> The domain accounts need permissions on the content (which the
> FPSE '02 probably generously over allotted) and log on rights to
> the machine (what groups have local login, and what domain
> groups are in them?).
>
> "Marty Shifflett" <MartyShifflett@discussions.microsoft.com> wrote in
> message news:B49BBA92-B2DD-4806-8AB4-79930D1C649B@microsoft.com...
>
>
>
| |
| Roger Abell [MVP] 2007-08-14, 1:20 pm |
| This IIS instance is on a domain controller ??
What do you show in the security event log for the failure ?
(I am assuming that viewing the FPSE grants in the Sharepoint
admin page it looks correct).
"Marty Shifflett" <MartyShifflett@discussions.microsoft.com> wrote in
message news:4C204538-31CA-4A85-8337-0F82D0A673D8@microsoft.com...[vbcol=seagreen]
>I created a new global security group called "Web Authors" and put the user
> in question in that group. I went in and edited the Default Domain
> Controllers Policy and added that new group to the "Allow log on locally"
> policy in the User Rights Assignment section. I still cannot log on via
> FrontPage as that user. Any ideas?
>
> "Roger Abell [MVP]" wrote:
>
| |
| Marty Shifflett 2007-08-14, 7:18 pm |
| I get an event 680 logon attempt, then an event 540 successful logon, and
then an event 538 user logoff.
The login box then comes back and asks for credentials again.
"Roger Abell [MVP]" wrote:
> This IIS instance is on a domain controller ??
> What do you show in the security event log for the failure ?
> (I am assuming that viewing the FPSE grants in the Sharepoint
> admin page it looks correct).
>
> "Marty Shifflett" <MartyShifflett@discussions.microsoft.com> wrote in
> message news:4C204538-31CA-4A85-8337-0F82D0A673D8@microsoft.com...
>
>
>
| |
| Marty Shifflett 2007-08-14, 7:18 pm |
| Yes it is running on a domain controller. The only other box that I could
put it on right now that isn't a DC would be the Exchange server.
"Roger Abell [MVP]" wrote:
> This IIS instance is on a domain controller ??
> What do you show in the security event log for the failure ?
> (I am assuming that viewing the FPSE grants in the Sharepoint
> admin page it looks correct).
>
> "Marty Shifflett" <MartyShifflett@discussions.microsoft.com> wrote in
> message news:4C204538-31CA-4A85-8337-0F82D0A673D8@microsoft.com...
>
>
>
| |
| Roger Abell [MVP] 2007-08-15, 1:20 am |
| Well, that makes it sound like the NTFS permissions are not
correct on the content as the account is logging in, or perhaps
the _vti_bin virtual directory is not defined for the web.
You could address that via use of the FPSE check/fix option,
by placing an audit for Everyone Full Fail on the content and
see what shows up in the event log, and/or by looking in the
IIS webserver log.
Roger
"Marty Shifflett" <MartyShifflett@discussions.microsoft.com> wrote in
message news:29CD4B1A-C99E-4254-8C06-080F57E06E15@microsoft.com...[vbcol=seagreen]
>I get an event 680 logon attempt, then an event 540 successful logon, and
> then an event 538 user logoff.
>
> The login box then comes back and asks for credentials again.
>
> "Roger Abell [MVP]" wrote:
>
| |
| Marty Shifflett 2007-08-15, 1:20 am |
| I will try that and see what happens.
"Roger Abell [MVP]" wrote:
> Well, that makes it sound like the NTFS permissions are not
> correct on the content as the account is logging in, or perhaps
> the _vti_bin virtual directory is not defined for the web.
>
> You could address that via use of the FPSE check/fix option,
> by placing an audit for Everyone Full Fail on the content and
> see what shows up in the event log, and/or by looking in the
> IIS webserver log.
>
> Roger
>
> "Marty Shifflett" <MartyShifflett@discussions.microsoft.com> wrote in
> message news:29CD4B1A-C99E-4254-8C06-080F57E06E15@microsoft.com...
>
>
>
|
|
|
|